More Problems Could Loom for Oracle’s Java

According to a Wednesday blog post via KrebsonSecurity.com, a new Zero-Day exploit for Java has been made available via the black market. But the asking price? $5 thousand a piece.

The seller promised unencrypted source files for the exploit in a post via hacker forums.

KrebsonSecurity, meanwhile, noted two available forms of the exploit were likely already sold, pointing to the removal of the post sometime later.

The emergence of a possible new threat arrives at a bad time for Oracle. The company just finished patching up a previous exploit with Version 7 Update 11. In that instance, it was considered so serious that the U.S. government issued a security advisory.

So what’s the solution for Java-related problems? If you’re that concerned, you can simply disable it. “Yes, there are still sites that require Java, but most users can — and should — get by without it,” suggested KrebsonSecurity.

We have multiple locations for DDoS Mitigation, which allows clients to have lowest latency and prefences as well. Depending on the size and type of the attack, locations can be changed or combined to handle large or complex attacks